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Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1 .704(b). 

Status 

Responsive to communication(s) filed on 31 August 2000 . 
2a)D This action is FINAL. 2b) El This action is non-final. 

3) Q Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1 935 CD. 1 1 , 453 O.G. 21 3. 

Disposition of Claims 

4) E3 Claim(s) 1-51 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) [>3 Claim(s) 1^S± is/are rejected. 

7) Q Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) 13 The drawing(s) filed on 31 August 2000 is/are: a)S accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 
2.D Certified copies of the priority documents have been received in Application No 



3.Q Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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1 ) IS Notice of References Cited (PTO-892) 4) □ Interview Summary (PTO-41 3) 

2) |_J Notice of Draftsperson's Patent Drawing Review (PTO-948) Paper No(s)/Mail Date. . 

3) ^ Information Disclosure Statement(s) (PTO-1449 or PTO/SB/08) 5) O Notice of Informal Patent Application (PTO-152) 

Paper No(s)/Mail Date 2.4.5 and 6 . 6) □ Other: . 
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Detail Action 

1. This Office Action is in response to the Application SN 09/653,610 filed on 
08/31/2000. Claims 1-51 are presented for examination. 

Claim Objections 

2. Claim 40 is objected to because of the following informalities: 

On page 176, line 1: "The carrier medium as recited in claim 1, ..." should be 
"The carrier medium as recited in claim 35, 
Appropriate correction is required. 

Claim Rejections - 35 USC § 102 

3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in a patent granted on an application for patent by another filed in the 
United States before the invention thereof by the applicant for patent, or on an international application 
by another who has fulfilled the requirements of paragraphs (1), (2), and (4) of section 371(c) of this 
title before the invention thereof by the applicant for patent. 
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The changes made to 35 U.S.C. 102(e) by the American Inventors Protection Act 
of 1999 (AIPA) and the Intellectual Property and High Technology Technical 
Amendments Act of 2002 do not apply when the reference is a U.S. patent resulting 
directly or indirectly from an international application filed before November 29, 2000. 
Therefore, the prior art date of the reference is determined under 35 U.S.C. 102(e) prior 
to the amendment by the AIPA (pre-AlPA 35 U.S.C. 102(e)). 

4. Claims 1,18 and 35 is rejected under 35 U.S.C. 102(e) as being anticipated 
by He et al. (US 6,088,451), herein after referred as He. 

5. As to claim 1, He teaches a method for accessing a service in a distributed 
computing environment, comprising: 

a client receiving a capability credential (i.e., a list of user credentials enclosed in 
a credential ticket), wherein said capability credential indicates that the client is allowed 
to access a portion of a first service's capabilities (He, C18: L34-67 and C19: L1-39); 

the client using said capability credential (i.e., the received credential ticket) to 
request an access interface document to access the first service (to access a specified 
network element 104) (He, C20: L14-67 and C21: L1-22); 

the client receiving said access interface document, wherein said access 
interface document comprises an interface for accessing only said portion of the first 
service's capabilities (i.e., once in authorization is OK, the user is permitted to access 
pull down menus to identify those network elements to which is a lowed to access); and 
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the client using the interface from said access interface document to access a 
capability from said portion of the first service's capabilities (i.e., the user can make an 
access request by selecting/clicking on one of the network elements listed by the pull- 
down menu) (He, C26: L58-65). 

6. Claim 18 is a corresponding client device claim of method claim 1; therefore, it is 
rejected under the same rationale. 

7. Claim 35 is a corresponding carrier medium claim of method claim 1; therefore, it 
is rejected under the same rationale. 

Claim Rejections - 35 USC § 103 

8. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

9. Claims 2-17, 19-34 and 36-51 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over He, in view of Pulliam et al. (US 6,6,09,108), herein after 
referred as Pulliam. 
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10. As to claim 2, He teaches using said capability credential to request an access 
interface document as in claim 1, but does not explicitly teach sending an advertisement 
request message in a data representation, wherein said advertisement request 
message includes said capability credential. 

In the related art, Pulliam teaches an online shopping communication schema for 
communicating online orders, wherein a message client 924 (Fig. 10) is a multi- 
threaded HTTP process that provides the required functions to receive the XML 
formatted document (i.e., pull-down lists of makes and models as an access interface 
document), then generates and sends XML messages and application credentials to 
and from the locate server; and the listener 902 of the server 821 (Fig. 9) accepts 
messages and provides support for authenticating whom the request is from using 
private key infrastructure (PKI) encrypted user credentials to allow or deny access to 
specific functions and data sets supported by the server based on the requestor's 
identity/credentials (Pulliam, C14: L34-45 and C15: L38-42). 

Therefore, it would have been obvious to one having ordinary skill in the art at 
the time the invention was made to combine the teachings of He and Pulliam to request 
an access interface document by sending an advertisement request message in a data 
representation, wherein said advertisement request message includes said capability 
credential since such methods were conventionally employed in the art to submit 
request messages along with attached client/user's credentials to the security system 
for authentication requirement to obtain access to protected information and service. 
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11. As to claim 3, He-Pulliam teaches the method of claim 2, wherein said data 
representation language is extensible Markup Language (XML) (Pulliam, C16: L40-50). 

12. As to claim 4, He-Pulliam teaches the method of claim 2, further comprising in 
response to receiving said advertisement request message, generating and sending an 
advertisement request response which includes a custom advertisement according to 
said portion of the first service's capabilities that the client is allowed to access (i.e., 
generating pull-down menus to identify those capabilities to which the client is allowed 
to access) (He, C26: L58-65 and Pulliam, C13: L34-40). 

13. As to claim 5, He-Pulliam teaches the method of claim 4, wherein said custom 
advertisement specifies an XML schema defining messages to be sent to and from the 
first service (i.e., the network element/sever) (Pulliam, C15: L39-43 and C16: L40-50). 

14. As to claim 6, He-Pulliam teaches the method of claim 1, further comprising the 
client receiving a protected advertisement for the first service, wherein said protected 
advertisement provides an address (i.e., through message exchanges with the 
authentication server 202, the user authenticates his/her identify to the network and 
obtains the authentication ticket that contains, or redirects the user to, the address of 
credential server 204) to request said security credential, but does not provide said 
access interface document to access the service. (He, C17: L55-67 and C18: L1-23). 
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15. As to claims 7-10, He-Pulliam teaches the method of claim 6, further comprising 
the client sending a request for said security credential to said address for an 
authentication service that determines a level of capabilities of the first service that 
client is authorized to access (i.e., the user sends a message to the credential server 
204 to request for a list of the user credentials) and generates said security credential to 
grant access for the client to said portion of the first service's capabilities (i.e., upon 
receiving the request message, the credential server 204 retrieves information from the 
authentication ticket and based on the user identifier, the credential server 204 will 
retrieve the list of user credentials from the registration database 210 and enclose the 
list in a credential ticket to send back in a response message to the user) (He, C18: 
L57-67 andC19: L1-31). 

1 6. As to claim 1 1 , He-Pulliam teaches the method of claim 6, wherein said protected 
advertisement further provides an address (i.e., through message exchanges with the 
credential server 204 using the authentication ticket, the user obtains the credential 
ticket that contains, or redirects the user to, the address of network element access 
server 206) to request said access interface document to access the first service, 
wherein said using capability credential to request an access interface comprises 
sending an advertisement request message to said address to request said access 
interface document (He, C18: L57-67 and C19: L1-31). 
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17. As to claim 12, He-Pulliam teaches the method of claim 6, wherein receiving said 
protected advertisement from a space service (i.e., "realm" or network 106 of Fig. 2), 
wherein said space service comprises protected advertisements for a plurality of 
services (i.e., comprises plurality of different organizations on different types of network 
elements 104) including the first service (the specified network element 104), wherein 
each protected advertisement specifies an address (address of the network security 
server NNS 208) for request a security credential to allow access to a corresponding 
service (He, C3: L4-9, C14: L62-67 and C15: L1-28). 

18. As to claim 13, He-Pulliam teaches the method of claim 1, wherein said access 
interface document comprises a schema (i.e., XML schema) defining messages for 
accessing said portion of the first service's capabilities, wherein said using the interface 
from said access interface document to access a capability (i.e., using the pull down list 
to access available information/services) comprises sending a message according to 
said schema to the first service (Pulliam, C16: L40-50). 

19. As to claim 14, He-Pulliam teaches the method of claim 13, wherein said 
message includes said capability credential (i.e., the list of user credentials contained in 
the credential ticket), the method further comprising the first service (i.e., the network 
element access server 206) using said capability credential to authenticate said 
message as from the client (He, C20: L28-67 and C21: L1-13). 
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20. As to claim 15, He-Pulliam teaches the method of claim 1, wherein said access 
interface document comprises a schema (i.e., XML schema) defining messages for 
accessing said portion of the first service's capabilities, wherein the client using said 
access interface document to construct a message gate for sending messages to the 
first service (i.e., a message client 924 provides the required functions to receive the 
XML formatted document, then generates and sends XML messages and application 
credentials to and from the server), wherein the message gate embeds said capability 
credential in each message (Pulliam, C15: L38-43). 

21. As to claims 16-17, He-Pulliam teaches the method of claim 15, wherein the 
message gate checks each message for compliance with said message schema, i.e., 
an XML schema (He, C16: L40-50). 

22. Claims 19-34 are corresponding client device claims of method claims 2-17; 
therefore, they are rejected under the same rationale. 

23. Claims 36-51 are corresponding carrier medium claims for method claims 2-17; 
therefore, they are rejected under the same rationale. 

24. Further references of interest are cited on Form PTO-892, which is an 
attachment to this office action. 



Application/Control Number: 09/653,610 



Page 10 



Art Unit: 2141 

25. A shortened statutory period for reply to this action is set to expire THREE (3) 
months from the mailing date of this communication. See 37 CFR 1.134. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Quang N. Nguyen whose telephone number is (703) 
305-8190. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
SPE, Rupal Dharia, can be reached at (703) 305-4003. The fax phone number for the 
organization is (703) 872-9306. 

Any inquiry of a general nature or relating to the status of this application or 
proceeding should be directed to the receptionist whose telephone number is (703) 305- 
3800/4700. 

Quang N. Nguyen 
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